Description

CVE: CVE-2012-2068

This module enables you to create slideshow blocks to embed into templates. The module doesn't sufficiently filter user supplied text. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "administer fancy_slide".

Versions affected

Fancy Slide 6.x-2.x versions prior to 6.x-2.6.

Drupal core is not affected. If you do not use the contributed Fancy Slide module, there is nothing you need to do.